General

  • Target

    4ac3b8f070b0e1d3fc27c84ed3cea540_NeikiAnalytics

  • Size

    125KB

  • Sample

    240509-qylk8afc36

  • MD5

    4ac3b8f070b0e1d3fc27c84ed3cea540

  • SHA1

    aaadd87617c403771aae1c00a0678f539784d787

  • SHA256

    903f9d3e3a48c2d7d8826880195f54d076e6e8bdae3b05693846ebc57c7c58dc

  • SHA512

    af9e50ae8d8987c4dbf9d35e4b76f5a63f632d3cc80cc6b3c4751885c3e7015d2b066c5161bca27754f2bf0babfafed9f2b9c882958d7cef661f7c1b9f47b05f

  • SSDEEP

    3072:n3Qvf7syKtKGOlmuIT6rcDOxNcU1WdTCn93OGey/ZhJakrPF:g7sKplmuIT6YDMNcrTCndOGeKTaG

Malware Config

Targets

    • Target

      4ac3b8f070b0e1d3fc27c84ed3cea540_NeikiAnalytics

    • Size

      125KB

    • MD5

      4ac3b8f070b0e1d3fc27c84ed3cea540

    • SHA1

      aaadd87617c403771aae1c00a0678f539784d787

    • SHA256

      903f9d3e3a48c2d7d8826880195f54d076e6e8bdae3b05693846ebc57c7c58dc

    • SHA512

      af9e50ae8d8987c4dbf9d35e4b76f5a63f632d3cc80cc6b3c4751885c3e7015d2b066c5161bca27754f2bf0babfafed9f2b9c882958d7cef661f7c1b9f47b05f

    • SSDEEP

      3072:n3Qvf7syKtKGOlmuIT6rcDOxNcU1WdTCn93OGey/ZhJakrPF:g7sKplmuIT6YDMNcrTCndOGeKTaG

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks